extendedAttributesOauth2Client property
GoogleIamAdminV1WorkforcePoolProviderExtraAttributesOAuth2Client?
extendedAttributesOauth2Client
getter/setter pair
The configuration for OAuth 2.0 client used to get the extended group memberships for user identities.
Only the AZURE_AD_GROUPS_ID attribute type is supported. Extended groups
supports a subset of Google Cloud services. When the user accesses these
services, extended group memberships override the mapped google.groups
attribute. Extended group memberships cannot be used in attribute mapping
or attribute condition expressions. To keep extended group memberships up
to date, extended groups are retrieved when the user signs in and at
regular intervals during the user's active session. Each user identity in
the workforce identity pool must map to a unique Microsoft Entra ID user.
Optional.
Implementation
GoogleIamAdminV1WorkforcePoolProviderExtraAttributesOAuth2Client?
extendedAttributesOauth2Client;